Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/O8YaMPVPH9Lr6dh3yTGkx56cTc8.roa
File: O8YaMPVPH9Lr6dh3yTGkx56cTc8.roa (raw, json)
Hash identifier: yKnDDx+5iwOirv8OfUptwcrZs6QZ0IVXjhkyCtPX2g4=
Subject key identifier: 3B:C6:1A:30:F5:4F:1F:D2:EB:E9:D8:77:C9:31:A4:C7:9E:9C:4D:CF
Certificate issuer: /CN=d2f38d4aeb4d0288dbb854d1eae0bd8ad3f841fa
Certificate serial: 06A89509
Authority key identifier: D2:F3:8D:4A:EB:4D:02:88:DB:B8:54:D1:EA:E0:BD:8A:D3:F8:41:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0vONSutNAojbuFTR6uC9itP4Qfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/O8YaMPVPH9Lr6dh3yTGkx56cTc8.roa
Signing time: Sat 01 Jan 2022 09:55:17 +0000
ROA not before: Sat 01 Jan 2022 09:55:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210303
IP address blocks: 194.107.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111711497 (0x6a89509)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2f38d4aeb4d0288dbb854d1eae0bd8ad3f841fa
Validity
Not Before: Jan 1 09:55:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3bc61a30f54f1fd2ebe9d877c931a4c79e9c4dcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:84:65:4c:04:e1:2a:25:a8:c0:6b:51:46:86:
70:2c:82:a6:a6:d7:63:55:09:37:ab:65:16:1f:b3:
d2:ea:cb:2f:20:61:27:05:75:66:14:98:d8:c4:9c:
dd:ff:41:9f:ef:2d:71:00:bf:31:a0:2f:b1:f0:ea:
27:d8:da:30:ff:41:d5:a8:b7:4f:d8:c0:fd:fc:92:
df:19:de:31:bf:4f:5a:81:95:ff:21:4f:2e:bd:20:
a9:58:cb:be:7c:50:d6:1f:a9:41:f3:9b:29:4d:32:
f2:aa:04:8f:66:41:64:41:57:0e:86:e2:37:83:ec:
d7:7e:7f:08:2b:61:e4:65:77:26:72:3a:a0:ff:08:
aa:0e:f7:af:38:d2:86:2e:13:f5:a3:56:8c:83:06:
b4:70:f4:0e:3a:10:10:6a:1e:79:fe:c4:33:7b:59:
2b:0e:2a:38:57:42:ae:80:69:a7:29:7d:e3:1d:05:
e1:af:f7:26:b5:7d:b9:07:59:08:04:aa:cb:ca:b9:
1c:1b:e5:d6:06:95:17:99:eb:45:96:76:f7:31:14:
01:7b:6f:04:ff:fd:79:71:de:45:62:af:62:51:b0:
cf:65:ef:db:13:8e:98:91:aa:67:97:83:d2:f4:6c:
67:e8:4d:59:10:c9:2e:93:c9:3f:b4:58:9e:db:06:
92:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:C6:1A:30:F5:4F:1F:D2:EB:E9:D8:77:C9:31:A4:C7:9E:9C:4D:CF
X509v3 Authority Key Identifier:
keyid:D2:F3:8D:4A:EB:4D:02:88:DB:B8:54:D1:EA:E0:BD:8A:D3:F8:41:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0vONSutNAojbuFTR6uC9itP4Qfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/O8YaMPVPH9Lr6dh3yTGkx56cTc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.252.0/22
Signature Algorithm: sha256WithRSAEncryption
03:a0:58:28:c6:6d:d8:f7:3a:37:71:e8:f8:b4:93:ff:cb:8a:
ec:1b:de:ff:09:8c:76:86:3c:fd:9d:c5:a5:2f:2a:7c:58:28:
fa:cb:32:36:74:83:23:dd:53:f2:c9:1d:c0:ae:8d:73:64:fc:
d0:8b:bc:33:72:4f:de:85:4d:58:df:0a:17:fa:7a:a5:90:f5:
49:e4:a3:9c:72:47:86:b8:b9:1e:bb:98:b3:93:20:35:72:e8:
51:1e:81:9d:dd:ab:ea:00:bd:d8:0e:fd:dc:67:82:2c:ce:b1:
11:a5:b5:4e:14:c3:4e:a9:1c:49:b8:1d:97:f1:c7:6c:06:1b:
5f:60:67:4f:bb:5c:99:08:4c:4f:62:2f:46:d2:59:5c:24:d8:
1f:62:bd:a3:eb:b0:82:43:a6:fe:10:4d:76:28:ed:c0:77:df:
2e:dd:a0:72:03:57:07:00:3d:71:6b:b4:9a:d7:4b:61:b7:07:
fb:56:71:4f:08:b8:30:47:d9:48:45:35:7a:2a:40:78:02:b0:
69:66:bb:b0:47:7c:89:76:47:2e:fa:04:3a:2c:cf:60:4e:04:
95:a7:a4:1e:e9:f2:55:18:ab:44:3d:fe:fd:71:f9:40:04:8a:
30:22:f3:11:de:ad:3b:6b:36:3e:38:86:8b:d0:4f:f0:c0:09:
57:88:86:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:59 2023 by rpki-client on console-fra.rpki-client.org